Security and data
The questions a chief asks before a roster goes anywhere.
A department is trusting Semparo with its people's records. Here is exactly what is visible, who owns what, and what happens to it, with the honest edges left in.
Before you ask
The three questions every chief asks in the first ten minutes.
What can the department actually see?
Compliance on the training you assign, and the credential registry. That is the whole list. A member's personal preparation on Semparo, their own practice, their documents, their readiness for any other department, is never visible to any employer. It is engineered in, not just promised, and it is why members accept an employer-paid seat instead of resenting it.
See both views side by sideWho owns the records?
The department does. Your roster, your credential records, and your training history are yours, and they leave in an audit-ready export whenever you want them, including on the way out. Semparo handles personal information under PIPEDA. Before any department signs, we put the data terms in writing rather than asking you to take a webpage's word for it. Ask for them and they come back in writing.
Read the privacy summaryWhat happens to a record when someone leaves?
A credential record belongs to the department's roster history and stays in the department's export, so an officer's departure does not take the evidence with it. That is the point of the probationary track too: quarterly evaluation notes that survive turnover, rather than living in the memory of whoever ran the file.
What we commit to in writing
Four commitments, before anything is signed.
Members keep a private product
The department sees compliance on the training it assigns and the credential registry. A member's own practice, documents and readiness for any other department are never visible to an employer. That boundary is enforced in the data model, not just promised in a policy.
The department owns its records
Your roster, credential records and training history belong to the department. They are not sold, not shared with another department, and not used to train AI models.
Your data leaves when you do
An audit-ready export is available whenever you want it, including on the way out. A record does not become a hostage to a renewal.
Handled under PIPEDA, in Canada
Semparo handles personal information under PIPEDA, and the database and uploaded files are stored in Canada. The data terms are put in writing before any department signs.
The full data-processing terms are provided in writing to any department before it signs. The public privacy summary covers how Semparo handles personal information across the platform.